Wordfence offers a free Bug Bounty Program for WordPress plugins and themes, rewarding researchers up to $31,200 for reported vulnerabilities. Last week, 111 vulnerabilities were reported across 94 plugins and 5 themes, with 33 contributors to WordPress security. The Wordfence Intelligence platform provides free access to vulnerability data for users to enhance WordPress security. A total of 111 vulnerabilities were disclosed last week, with 37 patched and 74 unpatched. The vulnerabilities included varying severities, with 13 critical, 18 high, 78 medium, and 2 low. Organizations can use the Wordfence CLI Vulnerability Scanner and API for ongoing security assessments. Signing up for the mailing list grants users access to weekly reports on vulnerabilities.
Wordfence Intelligence Weekly WordPress Vulnerability Report (March 17, 2025 to March 23, 2025)
